One Hat Cyber Team

Edit File: self_register.php

<?php if(empty($page)){ include("access.php"); } ?>
<?php 
	$user 			= get_user_full($_SESSION['session']);
	$roles 			= (int)$user['idRoles'];
	$idUser 		= (int)$user['idUser'];
	$idSyarikat 	= (int)$user['idSyarikat'];

$sql 			= "SELECT 
							a.*, 
							b.nama, 
							b.company_cert, 
							b.company_no, 
							b.alamat, 
							b.noTel, 
							b.noFax, 
							b.oldid, 
							b.status AS company_status, 
							IF(c.idSyarikat IS NOT NULL AND c.idSyarikat ='','Y','T') as editdata,
							IF(c.company_no IS NOT NULL AND c.company_no ='','Y','T') as editno,
							c.company_no AS company_no_old
						FROM user_register a 
						LEFT JOIN kod_syarikattemp b ON b.idSyarikat=a.idSyarikat 
						LEFT JOIN kod_syarikat c ON c.idSyarikat=b.oldid 
						WHERE a.idUser=?";
	$param_data 	= array("idUser" => $idUser);
	$datax 			= mysqli_prepare_all($sql,$param_type = "auto",$param_data);
	$fetch_datax	= $datax->fetch_assoc();

$fail 			= $fetch_datax['company_cert'];
	$linkcert 		= "1";
	if (file_exists("upload/syarikat_temp/{$fail}") && !empty($fail)) {$linkcert="upload/syarikat_temp/{$fail}";}

$success 	= 0;
	if($_POST):

if(!empty($upvalid))
			goto asd;
		
		$sql 	 		= "	UPDATE 
								user_register
							SET 
								nameUser 			= ?, 
								mobileNo 			= ?
							WHERE 
								idUser 	= ?
							";
		$param_type 	= "auto";
		$param_data 	= array(
							"nameUser" 		=> strtoupper($_POST['val-name']),
							"mobileNo" 		=> $_POST['val-mobile'],
							"idUser" 		=> $fetch_datax['idUser']
						 	);
		$data 		= mysqli_prepare_audit($sql,$param_type,$param_data,"Agent Self-Update Profile");

if(empty($fetch_datax['company_cert'])){
			$list_ext 	= array(
							'.gif',
							'.pdf',
							'.jpeg',
							'.jpg',
							'.jpe',
							'.bmp',
							'.ico',
							'.svg',
							'.tif',
							'.tiff'
							);

$filename 	= $_FILES['val-fail']['name'];
			$ext 		= strtolower(substr($filename, strrpos($filename, ".")));

$folder 		= "./upload/syarikat_temp";
			$file_name 		= "";
			if (in_array($ext, $list_ext)) {
				$file_name 	= rand_filename2("./upload/syarikat_temp/",$ext,2);
				move_uploaded_file($_FILES['val-fail']['tmp_name'],$folder."/{$file_name}{$ext}");
				$file_name 	= $file_name.$ext;
			}
		}else{
			$file_name 	= $fetch_datax['company_cert'];
		}

if($fetch_datax['company_status']=='N'){

$sql 	 		= "	UPDATE 
									kod_syarikattemp
								SET 
									company_no 		= ?,
									company_cert 	= ?,
									nama 			= ?,
									alamat 			= ?,
									noTel 			= ?,
									noFax 			= ? 
								WHERE 
									idSyarikat 	= ?
								";
			$param_type 	= "auto";
			$param_data 	= array(
								"company_no" 	=> $_POST['val-creg'],
								"company_cert" 	=> $file_name,
								"nama" 			=> strtoupper($_POST['val-cname']),
								"alamat" 		=> $_POST['val-calamat'],
								"noTel" 		=> $_POST['val-ctel'],
								"noFax" 		=> $_POST['val-cfax'],
								"idSyarikat" 	=> $idSyarikat
							 	);
		}else{

$param_data 	= array();
			$comb1 			= " ";
			if(empty($fetch_datax['company_no_old'])){ 
				$comb1 						.= " company_no 	= ?, ";
				$param_data['company_no'] 	= $_POST['val-creg'];
			}

$sql 	 		= "	UPDATE 
									kod_syarikattemp
								SET 
									{$comb1}
									company_cert 	= ?,
									alamat 			= ?,
									noTel 			= ?,
									noFax 			= ? 
								WHERE 
									idSyarikat 	= ?
								";

$param_type 	= "auto";
			$param_data['company_cert'] = $file_name;
			$param_data['alamat'] 		= $_POST['val-calamat'];
			$param_data['noTel'] 		= $_POST['val-ctel'];
			$param_data['noFax'] 		= $_POST['val-cfax'];
			$param_data['idSyarikat'] 	= $idSyarikat;

}
		$data 		= mysqli_prepare_audit($sql,$param_type,$param_data,"Agent Self-Update Company");

$_SESSION['success']		= 1;
		$_SESSION['success_msg']	= "Successfully Update.";

echo "<script>window.location.replace('index.php?page=dashboard&success=1');</script>";
		exit();

asd:
			$_SESSION['success']		= 3;
			$_SESSION['success_msg']	= $upvalid;
			echo "<script>window.location.replace('index.php?page=dashboard&success=3');</script>";
			exit();

endif;
?>

<div class="content-header">
	<div class="row">
		<div class="col-sm-12 themed-background-themxe cxlearfix">
			<div class="row">
				<div class="col-md-10">
					<div class="widget-content ">
						<div class="img-thumbnail-avatar pull-left"><i class="fa fa-user" style="font-size: 45pt"></i></div>
						<h2 class="widget-heading h3 txext-light"><strong><?=$user['nameUser']?></strong></h2>
						<?php if($fetch_datax['flagApprove']=='N'){?>
						<span class="text-light-oxp">Status Registration : <span class="label label-warning label-status">Pending Approval...</span></span>
						<?php }else{ ?>
						<span class="text-light-oxp">Status Registration : <span class="label label-danger label-status">Registration Rejected!</span> <span class="label label-primary label-status">You Can Try Re-Submit The Registration.</span></span>
						<?php } ?>
					</div>
				</div>
				<div class="col-md-2">
					<div style="padding-bottom: 15px;">
						<div class="hidden-xs hidden-sm" style="display:block;height:30px"></div>
						<div class="btn btn-block btn-warning <?php if($fetch_datax['flagApprove']=='N'){?>disabled<?php }?> resubmit" data-senddata='{"ii": "<?php echo MD5($idUser);?>"}'>RE-SUBMIT</div>
					</div>
				</div>
			</div>
		</div>
	</div>
</div>

<div class="row">
	<div class="col-sm-12">
		<div class="block animation-fadeInQuickInv">
			
			<div class="block-title">
				<h2>Registration</h2>
			</div>
			
			<form class="push form-horizontal" id="form-validation" method="post" enctype="multipart/form-data" autocomplete="off">
				<div class="row">
				<div class="col-md-6">

<div class="row">
					    <div class="col-sm-12 col-md-7 col-md-offset-3">
					    	<strong class="text-primary">PROFILE</strong>
					    	<hr style="margin :5px 0px;border-top: 5px double #eee">
					    </div>
					</div>

<div class="form-group">
					    <label class="col-md-3 control-label" for="val-user">Email <span class="text-danger">*</span></label>
					    <div class="col-md-7">
					        <input type="email" id="val-user" name="val-user" value="<?php echo $fetch_datax['emailUser'];?>" class="form-control" readonly="readonly" placeholder="Username (E-mail)..">
					    </div>
					</div>

<hr>

<div class="form-group">
					    <label class="col-md-3 control-label" for="val-name">Name <span class="text-danger">*</span></label>
					    <div class="col-md-7">
					        <input type="text" id="val-name" name="val-name" value="<?php echo $fetch_datax['nameUser'];?>"  class="form-control validation" data-validation="default" placeholder="Name..">
					    </div>
					</div>
					<div class="form-group">
					    <label class="col-md-3 control-label" for="val-mobile">Mobile Number <span class="text-danger">*</span></label>
					    <div class="col-md-7">
					        <input type="text" id="val-mobile" name="val-mobile" value="<?php echo $fetch_datax['mobileNo'];?>"  class="form-control validation" data-validation="default" placeholder="Mobile Number (601XXXXXXXX)..">
					    </div>
					</div>

</div>

<div class="row">
					    <div class="col-sm-12 col-md-8 col-md-offset-3">
					    	<strong class="text-primary">COMPANY</strong>
					    	<hr style="margin :5px 0px;border-top: 5px double #eee">
					    </div>
					</div>

<div class="form-group">
					    <label class="col-md-3 control-label" for="val-cname">Name <span class="text-danger">*</span></label>
					    <div class="col-md-8">
					        <input type="text" id="val-cname" name="val-cname" value="<?php echo $fetch_datax['nama'];?>" class="form-control validation" data-validation="default" placeholder="Name.." <?php if($fetch_datax['editdata']=='T'){echo "disabled='disabled'";}?> >
					    </div>
					</div>

<div class="form-group">
					    <label class="col-md-3 control-label" for="val-creg">Registration No. <span class="text-danger">*</span></label>
					    <div class="col-md-8">
					        <input type="text" id="val-creg" name="val-creg" value="<?php echo $fetch_datax['company_no'];?>" class="form-control validation" data-validation="default" placeholder="Company Registration No." <?php if($fetch_datax['editno']=='T'){echo "disabled='disabled'";}?>>
					    </div>
					</div>

<div class="form-group">
					    <label class="col-md-3 control-label" for="val-fail">Company Certificate <span class="text-danger">*</span></label>
					    <div class="col-md-8">
							<div class="input-group" data-toggle="tooltip" title="Upload Certificate">
							<div class="input-group-btn">
							<label class="btn btn-primary">
								Browse <input type="file" name="val-fail" class="form-control" style="display: none" accept="<?php echo $conf_doctype2;?>">
							</label>
							</div>
							<span class="up1">
							<input style="background: white;color: #000" readonly='readonly' value="" type="passenger_upload_text" id="passenger_upload_text" name="passenger_upload_text" value="" class="form-control validation upload-name" data-validation="default" placeholder="No File Selected">
							</span>
							<a href="<?php echo $linkcert;?>" target="_blank" class="up2 form-control" style="cursor: pointer;">
								Click To Open<i class="fa fa-download pull-right" style="line-height: 1.42857143"></i>
							</a>
							<div class="up3 input-group-btn" data-toggle="tooltip" title="Delete File">
								<div class="btn btn-danger del-upload" data-senddata='{"ii": "<?php echo MD5('id',$idSyarikat);?>", "type": "selfregister", "file": "<?php echo $fail;?>"}'><i class="fa fa-times"></i></div>
							</div>
							</div>
							<i id="" class="help-blockx animation-pullUp text-warning" style="font-size: 9pt">
							<b>File Allowed: <?php echo $conf_doctype3;?></b>
							<br><b>(Max Size: <?echo $conf_maxuploadsize;?>MB)</b>
							</i>
					    </div>
					</div>
					<hr>
					<div class="form-group">
					    <label class="col-md-3 control-label" for="val-calamat">Address <span class="text-danger">*</span></label>
					    <div class="col-md-8">
							<textarea id="val-calamat" name="val-calamat" rows="5" class="form-control validation" data-validation="default" placeholder="Address.."><?php echo $fetch_datax['alamat'];?></textarea>
					    </div>
					</div>
					<div class="form-group">
					    <label class="col-md-3 control-label" for="val-ctel">Phone Number <span class="text-danger">*</span></label>
					    <div class="col-md-6">
					        <input type="text" id="val-ctel" name="val-ctel" value="<?php echo $fetch_datax['noTel'];?>" class="form-control validation" data-validation="default" placeholder="Phone Number..">
					    </div>
					</div>
					<div class="form-group">
					    <label class="col-md-3 control-label" for="val-cfax">Fax Number <span class="text-danger">*</span></label>
					    <div class="col-md-6">
					        <input type="text" id="val-cfax" name="val-cfax" value="<?php echo $fetch_datax['noFax'];?>" class="form-control validation" data-validation="default" placeholder="Fax Number..">
					    </div>
					</div>

</div>

</div>
				<hr>
				<div class="row">
					<div class="col-md-12"><center><button class="btn btn-primary">Update</button></center></div>
				</div>
			</form>
		</div>
	</div>
</div>

$.fn.custom_upload = function(){
		var t_parent 	= $(this).closest(".input-group");
		var up1 		= $(".up1",t_parent);
		var up2 		= $(".up2",t_parent);
		var up3 		= $(".up3",t_parent);
		var up2_val 	= up2.prop("href").substr(up2.prop("href").lastIndexOf('/') + 1);

if(up2_val !== "1"){
			up1.hide();
			up2.show();
			$(".btn",up3).removeClass("disabled");
		}else{
			up1.show();
			up2.hide();
			$(".btn",up3).addClass("disabled");
		}
	};

$(".del-upload").on("click",function(){	
		var t_parent 	= $(this).parents(".input-group");
		var up1 		= $(".up1",t_parent);
		var up2 		= $(".up2",t_parent);
		var up3 		= $(".up3",t_parent);	
		var senddata 	= $(this).data("senddata");
		if(up2.is(':visible')){
			if(confirm("Delete This File?")){
				$.post( 
					"ajax.php?do=clear_file", 
					senddata
				).done(function(data) {
					up1.show();
					up2.hide();
					$(".btn",up3).addClass("disabled");
				});
			}
		}else{
			$("input",t_parent).prop("value","");
			$(".btn",up3).addClass("disabled");
		}
	});

$("[type='file']").each(function(){
		$(this).custom_upload();
	});

$("[type='file']").on("change",function(){

var t_parent 	= $(this).closest(".input-group");
		var up1 		= $(".up1",t_parent);
		var up2 		= $(".up2",t_parent);
		var up3 		= $(".up3",t_parent);
		var validExtensions = doc_allowed1; //array of valid extensions
		var fileName = $(this).val().toLowerCase();
		var fileNameExt = fileName.substr(fileName.lastIndexOf('.') + 1);

$("#form-validation").setvalidation("");

$("#form-validation").on("submit",function(){
		if($(this).find(".has-error").length === 0){
			if(!confirm("Send This Registration Form. Are You Sure?")){
				return false;
			}else{
				$(".preloader").show();
			}
		}
	});

$(".resubmit").on("click",function(){
		var tgt 		= $(this);
		var senddata 	= tgt.data('senddata') ;	
		if(confirm("Re-Submit This Registration?")){
			$.post( 
				"ajax.php?do=resubmit", 
				senddata
			).done(function(data) {
				$(".label-status:eq(0)").removeClass("label-danger").addClass("label-warning").html("Pending Approval...");
				$(".label-status:eq(1)").remove();
				tgt.addClass("disabled");
				alert("Successfully Submit");
			});
		}
	})
});
</script>